[question]: ignore filters and whitelisting

Question

[question]: ignore filters and whitelisting

nskalis opened this issue 5 years ago · 3 comments

nskalis commented 5 years ago

Hi,

Is there a possibility to customise/override specific ROAs with mechanisms such as:

Ignore filters
You can use filters to exclude ROAs matching an ASN and/or prefix
Whitelist
By adding a whitelist entry you can manually authorise an ASN to originate a prefix in addition to the validated ROAs from the repository.

?

Answer 1 · 2019-10-28T02:25:09.000Z

Hi @nskalis,
Unfortunately this is not possible at the moment.
I am thinking of integrating this in GoRTR as it works on the JSON provided rather than OctoRPKI which translates directly the certificates data into a JSON.

Usually overrides can be customized in the router configuration.
Another solution could be a script fetching the JSON produced and filtering it before passing it to GoRTR.

Let me know if that answers your question.

Answer 2 · 2019-10-28T05:50:02.000Z

Prepared a branch and an issue:
cloudflare/gortr#34
https://github.com/cloudflare/gortr/tree/feature/filter

Answer 3 · 2019-10-29T08:35:48.000Z

thank you, yes, it does.